Guardium Teams with NetApp to Provide a Simpler and More Practical Approach to Securing Data for PCI

Oracle OpenWorld, San Francisco, Calif. - November 13, 2007 -- Guardium, the database security company, and Network Appliance, Inc. (NASDAQ: NTAP), a leading provider of storage and data management solutions, today announced the first joint solution for protecting cardholder data in databases without costly and time-consuming application re-writes. The combined solution allows organizations to quickly and easily comply with the Payment Card Industry Data Security Standard (PCI DSS), providing significant business benefits immediately and in the long term.

Other types of sensitive corporate data, such as financial, HR, CRM, and intellectual property information, can also be secured using this combined solution, which is being demonstrated for the first time at the Oracle OpenWorld Conference in San Francisco, November 11-15, 2007, in Booth #3137. As part of this announcement, Guardium also announced that it is joining the NetApp Partner Program as a Strategic Partner.

"Guardium and NetApp share a common philosophy of delivering practical, appliance-based solutions that integrate transparently into existing production environments," said Upesh Patel, vice president of Business Development at Guardium. "We look forward to combining both our innovative technologies and go-to-market activities to help our customers secure their data and successfully pass their audits."

"Storage and security concerns have become inseparable, and it's important that vendors work together to make this combination as seamless as possible," said Tim Russell, vice president and general manager of the Storage Security business unit at NetApp. "We're pleased to work with a leading database activity-monitoring vendor like Guardium to jointly address the data-at-rest encryption and key management requirements of our customers."

A wide variety of enterprises is required to comply with PCI-DSS. Furthermore, the scope of these requirements is quite broad and has expanded over time, incorporating best practices for perimeter security, data privacy, and layered security.

The NetApp and Guardium integrated solution helps enterprises build a strong foundation of trust and control for overall data security, while addressing a range of PCI requirements. The solution can be deployed transparently with no changes to applications, servers, desktops, storage, authentication, or user workflow, and with negligible impact on overall performance. The joint solution from Guardium and NetApp now provides a simpler and more practical alternative for complying with PCI DSS.

The combined solution is available immediately. For further information, contact Guardium or NetApp.

About NetApp
NetApp is a leading provider of innovative data management solutions that simplify the complexity of storing, managing, protecting, and retaining enterprise data. Market leaders around the world choose NetApp to help them reduce cost, minimize risk, and adapt to change. For solutions that deliver unmatched simplicity and value, visit us on the Web at

About Guardium
Guardium, the database security company, develops the most widely used solution for database activity monitoring, security and auditing, with a blue-chip customer base that spans organizations in all major geographies and industries. Founded in 2002, Guardium was the first company to address the core data security gap by delivering a practical, appliance-based platform that both protects databases in real-time and automates the entire compliance auditing process. Guardium's investors include Cisco Systems and leading venture capital firms. The company has partnerships with Oracle, Microsoft, IBM, Sybase, and Accenture, among others. Guardium is also a member of IBM's prestigious Data Governance Council and the PCI Security Standards Council.

Media Contacts:
Aline Kaplan

Roger Villareal